$ rpki-client -vvf rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft File: bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft (raw, json) Hash identifier: Xp9QNoYmaEwj5foi1gXpcb/8zybuG3+QQHv8jV5QIEk= Subject key identifier: 8B:72:EE:F1:BD:E7:8C:71:88:54:A4:D0:01:3E:65:A6:92:98:47:B3 Authority key identifier: 6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 Certificate issuer: /CN=A91E170B/serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Certificate serial: 3540 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft Manifest number: 349B Signing time: Sat 18 May 2024 14:18:26 +0000 Manifest this update: Sat 18 May 2024 14:18:25 +0000 Manifest next update: Sat 25 May 2024 14:18:25 +0000 Files and hashes: 1: bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl (hash: pdTj0U+xnFDxv6+FdPmpY0MgBrona6izzu5SSxNEEG4=) 2: D06D852C0E8411EFB653657DC4F9AE02.roa (hash: SywI770ENl7TLzZPS+7Qd4FzLZZohYfrrDDPXPl1a7g=) 3: 4703352E2BC311EEA3EEFA66C4F9AE02.roa (hash: GhMpIsuZe6UWSXVhxx0gZ7LGDFuMOBfOpEr3szGlSIw=) 4: 5E05FB54A8FE11E990A7E27FC4F9AE02.roa (hash: mkS8yistQSPi7NMH1JehepWmWxUa6l17roNRXFEiwqI=) 5: FCBF1666677C11EBB2A3F00CC4F9AE02.roa (hash: MXTujm5bxVtwRR2qRhwfBiQo+U60HZqoc/46+Q9rCqg=) 6: 88978730772311EBB972032EC4F9AE02.roa (hash: nz3/6k7N3mPNzs0DFxh1VvDXVpDIjk6/7OQf5UZ/EgA=) 7: 331F345A383611E6B2282B5DC4F9AE02.roa (hash: WuXzJGatSIhxLLVFJYnAc7zb2/GN+pIVoHOaMyICWzI=) 8: 318FB51A383611E6B2282B5DC4F9AE02.roa (hash: 4Q3os1Mfu8xIUdVQK6hTBnRWzUONxabmo1fE2pyLLXE=) 9: 328EDB76383611E6B2282B5DC4F9AE02.roa (hash: ch1wPAb/c25q+6cdmEAHM5pjXCNPqiccski5eE5WXDs=) 10: 3204348A383611E6B2282B5DC4F9AE02.roa (hash: mPli45HHzDhlWzD7+vX8/tUBtrWHY58J4/XZrbS0zeo=) 11: 89A73D46772311EBB972032EC4F9AE02.roa (hash: 9hXnGMU3WUCKM3WK6+9iFLRQ6N17p8pM/kmtF91qcvQ=) 12: ED90D73A46B611EEBADD0963C4F9AE02.roa (hash: 5p7K6wp/VhzIgACltrLmvNc2Mh3sce8QYs6DQ1Du+6M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:18:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13632 (0x3540) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E170B/serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Validity Not Before: May 18 14:18:25 2024 GMT Not After : May 25 14:18:25 2024 GMT Subject: CN=6648b8b1-7a46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:d9:fc:ce:73:10:b7:7e:0b:f7:81:b9:f9:c0: 79:28:a4:bd:d4:b8:26:94:4f:fd:ed:94:3c:62:38: 76:ef:15:ac:be:04:2d:c2:29:8a:ec:a2:20:3b:0b: df:20:0b:9c:b7:81:1f:18:25:77:ec:d2:1c:97:11: f1:7b:3c:1e:af:3a:6a:d4:ab:26:67:e0:d2:8e:92: b3:18:54:8c:1b:5c:e3:3a:1a:6a:4a:2c:b8:af:c4: 03:26:3f:99:ac:60:64:b5:60:b8:45:28:e6:b3:ba: ad:cc:c4:65:ec:88:5c:d4:d7:a0:9b:af:2e:62:2d: 46:d9:c5:13:33:ad:0f:b3:42:64:30:ea:91:16:0c: f3:1a:43:bf:8f:2b:e2:72:c9:f8:e9:ef:d9:30:91: 9b:b0:41:44:0f:e8:6c:d5:0a:f2:21:68:e5:4d:b8: 2b:4d:82:e8:88:e6:70:57:67:45:68:80:7d:71:4c: fb:c0:7a:4d:3a:da:bc:79:32:aa:f0:33:a7:3b:a1: ac:3e:79:8b:4c:94:fb:ba:a9:3d:5a:5f:33:ba:db: 41:2b:9a:ba:8c:25:45:34:e6:ed:02:50:ce:2c:68: ce:51:f5:76:ae:70:dd:f9:f2:ed:fd:bf:84:6c:60: 02:08:56:be:81:84:7c:64:b0:0c:32:49:b5:2f:be: 96:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:72:EE:F1:BD:E7:8C:71:88:54:A4:D0:01:3E:65:A6:92:98:47:B3 X509v3 Authority Key Identifier: keyid:6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:5c:1f:38:63:d9:93:cb:02:26:35:df:3d:bf:4a:a1:03:bc: 10:a3:b7:fb:f9:a9:7c:73:76:37:01:e6:b2:d2:df:9d:25:19: f3:6c:94:ed:54:f4:a6:14:4f:ec:24:8f:8b:6c:3b:89:7b:9b: 24:58:cb:6f:be:99:cf:23:eb:72:8c:b3:12:0d:f9:38:43:dc: f5:94:72:bf:70:58:56:9a:eb:bc:8f:35:14:9e:84:e2:41:9d: 8b:3f:b3:9a:5e:71:cc:bd:8e:e1:fb:78:27:b5:18:d9:35:45: c9:02:c1:dc:5d:33:d0:6c:90:d1:06:93:0f:bf:2e:40:9a:d0: 5c:18:0d:04:76:62:13:ee:d4:0a:a8:14:ce:6e:dd:e2:1a:44: 65:1e:76:1c:c6:d1:02:9e:25:32:11:09:15:30:df:5d:50:15: 2f:60:34:54:d8:1c:d9:45:b1:46:11:0e:e4:99:8f:c6:c2:ba: bb:69:cd:4a:f3:e1:a5:66:d8:24:89:15:34:8a:6a:bf:02:c7: 06:ac:07:3e:c4:50:d2:50:8c:f9:c3:8d:b9:14:12:14:8f:65: 88:4b:90:b7:08:52:a7:ac:12:a7:71:18:b8:d7:16:2e:2a:2e: 0b:55:29:2b:fa:8a:d9:a4:ba:c1:16:59:f0:45:a8:82:54:cd: 33:df:1c:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNUAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE3MEIxMTAvBgNVBAUTKDZEMzhDNUI0Q0Y0QkFEM0Q5ODQ4NzFBNzMyMUE5RDE2 OTYwQkUyNjgwHhcNMjQwNTE4MTQxODI1WhcNMjQwNTI1MTQxODI1WjAYMRYwFAYD VQQDEw02NjQ4YjhiMS03YTQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAndn8znMQt34L94G5+cB5KKS91LgmlE/97ZQ8Yjh27xWsvgQtwimK7KIgOwvf IAuct4EfGCV37NIclxHxezwerzpq1KsmZ+DSjpKzGFSMG1zjOhpqSiy4r8QDJj+Z rGBktWC4RSjms7qtzMRl7Ihc1Negm68uYi1G2cUTM60Ps0JkMOqRFgzzGkO/jyvi csn46e/ZMJGbsEFED+hs1QryIWjlTbgrTYLoiOZwV2dFaIB9cUz7wHpNOtq8eTKq 8DOnO6GsPnmLTJT7uqk9Wl8zuttBK5q6jCVFNObtAlDOLGjOUfV2rnDd+fLt/b+E bGACCFa+gYR8ZLAMMkm1L76W6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIty7vG9 54xxiFSk0AE+ZaaSmEezMB8GA1UdIwQYMBaAFG04xbTPS609mEhxpzIanRaWC+Jo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTcwQi85N0FGNkRGMDFE NkQxMUUyQTEyRDlFQUUwOEIwMkNEMi9iVGpGdE05THJUMllTSEduTWhxZEZwWUw0 bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JUakZ0TTlMclQyWVNIR25NaHFkRnBZTDRtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTcwQi85N0FGNkRGMDFENkQxMUUyQTEyRDlFQUUwOEIwMkNEMi9iVGpGdE05THJU MllTSEduTWhxZEZwWUw0bWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2XB84Y9mTywImNd89v0qhA7wQo7f7+al8c3Y3Aeay0t+dJRnzbJTt VPSmFE/sJI+LbDuJe5skWMtvvpnPI+tyjLMSDfk4Q9z1lHK/cFhWmuu8jzUUnoTi QZ2LP7OaXnHMvY7h+3gntRjZNUXJAsHcXTPQbJDRBpMPvy5AmtBcGA0EdmIT7tQK qBTObt3iGkRlHnYcxtECniUyEQkVMN9dUBUvYDRU2BzZRbFGEQ7kmY/Gwrq7ac1K 8+GlZtgkiRU0imq/AscGrAc+xFDSUIz5w425FBIUj2WIS5C3CFKnrBKncRi41xYu Ki4LVSkr+orZpLrBFlnwRaiCVM0z3xz5 -----END CERTIFICATE-----Generated at Sat May 18 15:58:26 2024 by rpki-client on console-ams.rpki-client.org